<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-07T10:54:27.243694+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d88d5b36-a54a-45c3-9831-764fe39ab345/export</id>
    <title>d88d5b36-a54a-45c3-9831-764fe39ab345</title>
    <updated>2026-07-07T10:54:27.270382+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d88d5b36-a54a-45c3-9831-764fe39ab345", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mq2fneiqzy2m", "content": "CVE-2026-53359 (Januscape) is a KVM shadow MMU use-after-free that enables guest-to-host VM escape and host compromise on Intel and AMD.\n", "creation_timestamp": "2026-07-07T10:32:00.998816Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d88d5b36-a54a-45c3-9831-764fe39ab345/export"/>
    <published>2026-07-07T10:32:00.998816+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f1de6583-6710-4c06-a8b1-2e2636e20f3d/export</id>
    <title>f1de6583-6710-4c06-a8b1-2e2636e20f3d</title>
    <updated>2026-07-07T10:54:27.273751+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f1de6583-6710-4c06-a8b1-2e2636e20f3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/android-adepts.bsky.social/post/3mq2epr65oz2w", "content": "\ud83d\udea8 KVM Januscape vulnerability (CVE-2026-53359) discovered: virtual machines can escape host systems! This critical flaw affects Intel &amp;amp; AMD, existing for 16 years. Already exploited as a 0-day, PoC code out, leading to host kernel panics &amp;amp; privilege escalation. Update your systems ASAP!", "creation_timestamp": "2026-07-07T10:15:27.616625Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f1de6583-6710-4c06-a8b1-2e2636e20f3d/export"/>
    <published>2026-07-07T10:15:27.616625+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f8e51e5d-b554-4d97-b13b-a509ffa799fb/export</id>
    <title>f8e51e5d-b554-4d97-b13b-a509ffa799fb</title>
    <updated>2026-07-07T10:54:27.274097+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f8e51e5d-b554-4d97-b13b-a509ffa799fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/hn-frontpage-bot.bsky.social/post/3mq27y7nazd2l", "content": "The Januscape vulnerability (CVE-2026-53359) is a critical use-after-free flaw in KVM/x86 that enables guest-to-host escapes on Intel and AMD hardware. It threatens multi-tenant clouds by allowing host kernel compromise or DoS, requiring immediate kernel patching.", "creation_timestamp": "2026-07-07T08:50:42.470764Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f8e51e5d-b554-4d97-b13b-a509ffa799fb/export"/>
    <published>2026-07-07T08:50:42.470764+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/dacdf016-87fc-4246-9f5d-8dbb58a2a4e6/export</id>
    <title>dacdf016-87fc-4246-9f5d-8dbb58a2a4e6</title>
    <updated>2026-07-07T10:54:27.274216+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "dacdf016-87fc-4246-9f5d-8dbb58a2a4e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/hn100.atproto.rocks/post/3mq24d5odp22f", "content": "Januscape: Guest-to-Host Escape in KVM/x86 [CVE-2026-53359]\nhttps://github.com/V4bel/Januscape\n\nhttps://news.ycombinator.com/item?id=48807908", "creation_timestamp": "2026-07-07T07:45:16.450987Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/dacdf016-87fc-4246-9f5d-8dbb58a2a4e6/export"/>
    <published>2026-07-07T07:45:16.450987+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7662a00a-c61d-4e17-8ab8-8ed914039195/export</id>
    <title>7662a00a-c61d-4e17-8ab8-8ed914039195</title>
    <updated>2026-07-07T10:54:27.274326+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7662a00a-c61d-4e17-8ab8-8ed914039195", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/buherator.bsky.social/post/3mpzvg6wlf727", "content": "Januscape: Guest-to-Host Escape in KVM/x86\n\n\n github.com -&amp;gt; \n\nCVE-2026-53359\n\n\nOriginal-&amp;gt;", "creation_timestamp": "2026-07-07T05:41:40.210484Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7662a00a-c61d-4e17-8ab8-8ed914039195/export"/>
    <published>2026-07-07T05:41:40.210484+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/3a34ea56-d8bd-44d2-ade6-633d01d6bd5d/export</id>
    <title>3a34ea56-d8bd-44d2-ade6-633d01d6bd5d</title>
    <updated>2026-07-07T10:54:27.274422+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "3a34ea56-d8bd-44d2-ade6-633d01d6bd5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/newssecia.bsky.social/post/3mpzo27sqra2b", "content": "\ud83e\udd16 CVE-2026-53359 ('Januscape'): 16-year-old KVM use-after-free allows guest VM escape to host on Intel/AMD x86. PoC published. Full exploit path suspected.\nhttps://thehackernews.com/2026/07/16-year-old-linux-kvm-flaw-lets-guest.html", "creation_timestamp": "2026-07-07T03:29:42.323328Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/3a34ea56-d8bd-44d2-ade6-633d01d6bd5d/export"/>
    <published>2026-07-07T03:29:42.323328+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/4867ee03-cb0a-40b6-bf0c-a5fde3707293/export</id>
    <title>4867ee03-cb0a-40b6-bf0c-a5fde3707293</title>
    <updated>2026-07-07T10:54:27.274521+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "4867ee03-cb0a-40b6-bf0c-a5fde3707293", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-53359", "type": "seen", "source": "https://bsky.app/profile/thecybersecguru.com/post/3mpznifdjii2k", "content": "Januscape (CVE-2026-53359): The 16-Year-Old KVM Bug That Lets a Guest VM Take Down Its\u00a0Host\n\nCVE-2026-53359, dubbed Januscape, is a 16-year-old KVM use-after-free letting guest VMs crash or escalate into the host.\u2026\n\nhttps://thecybersecguru.com/news/cve-2026-53359-januscape-kvm-guest-to-host-escape/", "creation_timestamp": "2026-07-07T03:19:44.852116Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/4867ee03-cb0a-40b6-bf0c-a5fde3707293/export"/>
    <published>2026-07-07T03:19:44.852116+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/5a6fe347-9194-4b85-b065-e9f6e9c828ad/export</id>
    <title>5a6fe347-9194-4b85-b065-e9f6e9c828ad</title>
    <updated>2026-07-07T10:54:27.274626+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "5a6fe347-9194-4b85-b065-e9f6e9c828ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/newsycombinatorbot.bsky.social/post/3mpzhvrhlpp24", "content": "Januscape: Guest-to-Host Escape in KVM/x86 [CVE-2026-53359] (github.com)\n\nDiscussion | Main Link", "creation_timestamp": "2026-07-07T01:39:50.578595Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/5a6fe347-9194-4b85-b065-e9f6e9c828ad/export"/>
    <published>2026-07-07T01:39:50.578595+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/dad99e44-ced6-413a-94a5-0eb4e192a5c8/export</id>
    <title>dad99e44-ced6-413a-94a5-0eb4e192a5c8</title>
    <updated>2026-07-07T10:54:27.274721+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "dad99e44-ced6-413a-94a5-0eb4e192a5c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/dacbarbos.eurosky.social/post/3mpzhml7m6k2r", "content": "MT @v4bel@x.com \n\ud83d\udca5 Introducing \"Januscape\" (CVE-2026-53359)  \n\nA Guest-to-Host Escape in KVM/x86 exploiting a UAF in the shadow MMU. Triggerable on both Intel and AMD hosts. Threatens x86 public clouds (GCP, AWS) that expose nested virtualization.  \n\nDetails: januscape.io\n\n#infosec #januscape #kvm", "creation_timestamp": "2026-07-07T01:34:44.076853Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/dad99e44-ced6-413a-94a5-0eb4e192a5c8/export"/>
    <published>2026-07-07T01:34:44.076853+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/307733ab-a8a5-4fb2-a6f2-d5a6f1002b41/export</id>
    <title>307733ab-a8a5-4fb2-a6f2-d5a6f1002b41</title>
    <updated>2026-07-07T10:54:27.274820+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "307733ab-a8a5-4fb2-a6f2-d5a6f1002b41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53359", "type": "seen", "source": "https://bsky.app/profile/almalinux.org/post/3mpzg5g3tgy2a", "content": "We have patched kernels ready for testing for two Linux kernel vulnerabilities: Januscape (CVE-2026-53359) and Bad Epoll (CVE-2026-46242). \n\nLearn more and help with testing: https://almalinux.org/blog/2026-07-06-januscape-bad-epoll/?utm_medium=social&amp;amp;utm_source=bluesky", "creation_timestamp": "2026-07-07T01:08:19.655185Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/307733ab-a8a5-4fb2-a6f2-d5a6f1002b41/export"/>
    <published>2026-07-07T01:08:19.655185+00:00</published>
  </entry>
</feed>
